Detections
Analytics
SuSE 11.1 Security Update : Acrobat Reader (SAT Patch Number 6138)
critical Nessus Plugin ID 58774
Language:
Synopsis
The remote SuSE 11 host is missing one or more security updates.Description
Specially crafted PDF files could have caused a denial of service or have lead to the execution of arbitrary code in the context of the user running acroread :- crafted fonts inside PDFs could allow attackers to cause an integer overflow, resulting in the possibility of arbitrary code execution. (CVE-2012-0774)
- an issue in acroread's JavaScript API could allow attackers to cause a denial of service or potentially execute arbitrary code. (CVE-2012-0775 / CVE-2012-0777)
Solution
Apply SAT patch number 6138.See Also
https://bugzilla.novell.com/show_bug.cgi?id=742126
https://bugzilla.novell.com/show_bug.cgi?id=756574
http://support.novell.com/security/cve/CVE-2012-0774.html
Plugin Details
Severity: Critical
ID: 58774
File Name: suse_11_acroread-120413.nasl
Version: 1.11
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 4/18/2012
Updated: 1/19/2021
Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus
Risk Information
VPR
Risk Factor: High
Score: 8.9
CVSS v2
Risk Factor: Critical
Base Score: 10
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: p-cpe:/a:novell:suse_linux:11:acroread, p-cpe:/a:novell:suse_linux:11:acroread-cmaps, p-cpe:/a:novell:suse_linux:11:acroread-fonts-ja, p-cpe:/a:novell:suse_linux:11:acroread-fonts-ko, p-cpe:/a:novell:suse_linux:11:acroread-fonts-zh_cn, p-cpe:/a:novell:suse_linux:11:acroread-fonts-zh_tw, cpe:/o:novell:suse_linux:11
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 4/13/2012